Data Center > Risk 과정
[영어 Live] CDRP (Certified Data Centre Risk Professional)
- 강의기간
-
교육 시작일 후 3일
- 난이도
- 고급
- 수강일
- 3일, 11:00~19:00
- 수강료
-
1,700,000원
KRW (KR)
- 환급
-
비환급과정
※ 비환급과정(면세) 입니다.
- 과목코드
- ABC227
※ 본 과정을 신청하는 경우 한국 교육서비스의 Terms&Conditions 에 동의하는 것으로 간주합니다. |
과정소개 |
한국휴렛팩커드 교육센터는 2024 EPI Silver Partner입니다. There is no specific prerequisite for the CDRP® course. However, participants who have at least three years' experience in a data centre and/or IT infrastructures will be best suited. This experience may come from a business or IT background where the participant has knowledge of both environments, and understands the mission of their organisation. Attendance of CDCP® is beneficial but not a requirement. Attendees passing the exam will be awarded the internationally accredited and recognized 'Certified Data Centre Risk Professional' certificate (CDRP®). CDRP® is globally accredited by EXIN, a fully independent exam and certification institute. The CDRP® certificate is valid for 3 years, after which recertification is required. Please see the EPI Recertification Program for available options. After completion of the course, the participant will be able to: - Understand the different standards and methodologies for risk management and assessment
- Establish the required project team for risk management
- Perform the risk assessment, identifying current threats, vulnerabilities and the potential impact based on customised threat catalogues
- Report on the current risk level of the data centre both quantitative and qualitative
- Anticipate and minimise potential financial impacts
- Understand the options for handling risk
- Continuously monitor and review the status of risk present in the data centre
- Reduce the frequency and magnitude of incidents
- Detect and respond to events when they occur
- Meet regulatory and compliance requirements
- Support certification processes such as ISO/IEC 27001
- Support overall corporate and IT governance
|
수강대상 |
The primary audience for this course is an IT, Facilities or Data Centre Operations professional working in and around the data centre (representing both end-customers and/or service provider/facilitators) and having responsibility to achieve and improve hi-availability and manageability of the data centre, such as: Data centre managers, Operations / Floor / Facility managers, IT managers, Information security managers, Security professionals, Auditors / Risk Managers / Professionals responsible for IT/corporate governance.
|
교육내용 |
Introduction to Risk Management - Risk management concepts
- Senior management and risk
- Enterprise Risk Management (ERM)
- Benefits of risk management
Data Centre Risk and Impact - Risk in facility, power, cooling, fire suppression, infrastructure and IT services
- Impact of data centre downtime
- Main causes of downtime
- Cost factors in downtime
Standards, Guidelines and Methodologies - ISO/IEC 27001:2013, ISO/IEC 27005:2011, ISO/IEC 27002:2013
- NIST SP 800-30
- ISO/IEC 31000:2009
- SS507:2008
- ANSI/TIA-942
- Other methodologies (CRAMM, EBIOS, OCTAVE, etc.)
Risk Management Definitions - Asset
- Availability/Confidentiality/Integrity
- Control
- Information processing facility
- Information security
- Policy
- Risk
- Risk analysis/Risk assessment/Risk evaluation/
- Risk treatment
- Threat/Vulnerability
- Types of risk
Risk Assessment Software - The need for software
- Automation
- Considerations
Risk Management Process - The risk management process
- Establishing the context
- Identification
- Analysis
- Evaluation
- Treatment
- Communication and consultation
- Monitoring and review
Project Approach - Project management principles
- Project management methods
- Scope
- Time
- Cost
- Cost estimate methods
Context Establishment - General considerations
- Risk evaluation, impact and acceptance criteria
- Severity rating of impact
- Occurrence rating of probability
- Scope and boundaries
- Scope constraints
- Roles & responsibilities
- Training, awareness and competence
Risk Assessment - Identification - The risk assessment process
- Identification of assets
- Identification of threats
- Identification of existing controls
- Identification of vulnerabilities
- Identification of consequences
- Hands-on exercise: Identification of assets, threats, existing controls, vulnerabilities and consequences
Risk Assessment - Analysis and Evaluation - Risk estimation
- Risk estimation methodologies
- Assessment of consequences
- Assessment of incident likelihood
- Level of risk estimation
- Risk evaluation
- Hands-on exercise: Assessment of consequences,
- probability and estimating level of risk
Risk Treatment - The risk treatment process steps
- Risk Treatment Plan (RTP)
- Risk modification
- Risk retention
- Risk avoidance
- Risk sharing
- Constraints in risk modification
- Control categories
- Control examples
- Cost-benefit analysis
- Control implementation
- Residual risk
Communication - Effective communication of risk management activities
- Benefits and concerns of communication
Risk Monitoring and Review - Ongoing monitoring and review
- Criteria for review
Risk scenarios - Risk assessment approach
- Data centre site selection
- Data centre facility
- Cloud computing
- UPS scenarios
- Force majeure
- Organisational shortcomings
- Human failure
- Technical failure
- Deliberate acts
|
선수과목 |
|
다음과목 |
|
- 교육장
- 실시간온라인교육
- 강의장
- MyRoom
- 주소
- 본 과정은 실시간 온라인으로 진행되는 과정으로 개강확정 후 접속 URL을 별도 안내드립니다.
- 전화
- 1661-9080
- 팩스
- 주차
-
불가능
- 안내
-
코로나 19 감염 예방을 위해 집합교육 참석이 어려운 분들을 위한 실시간 온라인 교육입니다.